The Reserve Bank of India (RBI) set up an inter-regulatory Working Group (WG) in July 2016 to look into and report on the granular aspects of FinTech and its implications so as to review the regulatory framework and respond to the dynamics of the rapidly evolving FinTech scenario. FinTech stands for financial technology and describes technologically enabled financial innovations.
The WG included representatives from RBI, SEBI, IRDA, PFRDA, NPCI, IDRBT, select banks and rating agencies.The report of the WG was released on February 08, 2018 for public comments.
One of the key recommendations of the WG was to introduce an appropriate framework for a regulatory sandbox (RS) within a well-defined space and duration where the financial sector regulator will provide the requisite regulatory guidance, so as to increase efficiency, manage risks and create new opportunities for consumers.
One of the key recommendations of the WG was to introduce an appropriate framework for a regulatory sandbox (RS) within a well-defined space and duration where the financial sector regulator will provide the requisite regulatory guidance, so as to increase efficiency, manage risks and create new opportunities for consumers.
The Reserve Bank of India released on 18th April 2019, the draft ‘Enabling Framework for Regulatory Sandbox’. Comments on the draft guidelines are invited from stakeholders by May 08, 2019.
The Regulatory Sandbox: Principles and Objectives
The Regulatory Sandbox
A regulatory sandbox (RS) usually refers to live testing of new products or services in a controlled/test regulatory environment for which regulators may (or may not) permit certain regulatory relaxations for the limited purpose of the testing. The RS allows the regulator, the innovators, the financial service providers (as potential deployers of the technology) and the customers (as final users) to conduct field tests to collect evidence on the benefits and risks of new financial innovations, while carefully monitoring and containing their risks. It can provide a structured avenue for the regulator to engage with the ecosystem and to develop innovation-enabling or innovation-responsive regulations that facilitate delivery of relevant, low-cost financial products. The RS is potentially an important tool which enables more dynamic, evidence-based regulatory environments which learn from, and evolve with, emerging technologies.
Objectives
The RS provides an environment to innovative technology-led entities for limited-scale testing of a new product or service that may or may not involve some relaxation in a regulatory requirement before a wider-scale launch.
The RS is, at its core, a formal regulatory programme for market participants to test new products, services or business models with customers in a live environment, subject to certain safeguards and oversight.
The proposed financial service to be launched under the RS should include new or emerging technology, or use of existing technology in an innovative way and should address a problem, or bring benefits to consumers.
The setting up of an RS can bring several benefits, some of which are significant and are delineated below:
- The RS fosters ‘learning by doing’ on all sides. Regulators obtain first-hand empirical evidence on the benefits and risks of emerging technologies and their implications, enabling them to take a considered view on the regulatory changes or new regulations that may be needed to support useful innovation, while containing the attendant risks. Incumbent financial service providers, including banks, also improve their understanding of how new financial technologies might work, which helps them to appropriately integrate such new technologies with their business plans. Innovators and FinTech companies can improve their understanding of regulations that govern their offerings and shape their products accordingly. Finally, feedback from customers, as end users, educates both the regulator and the innovator as to what costs and benefits might accrue to customers from these innovations.
- Users of an RS can test the product’s viability without the need for a larger and more expensive roll-out. If the product appears to have the potential to be successful, the product might then be authorized and brought to the broader market more quickly. If any concerns arise, during the sandbox period, appropriate modifications can be made before the product is launched in the broader market.
- FinTechs provide solutions that can further financial inclusion in a significant way. The RS can go a long way in not only improving the pace of innovation and technology absorption but also in financial inclusion and in improving financial reach. Areas that can potentially get a thrust from the RS include microfinance, innovative small savings and micro-insurance products, remittances, mobile banking and other digital payments.
- By providing a structured and institutionalized environment for evidence-based regulatory decision-making, the dependence of the regulator on industry/stakeholder consultations only is correspondingly reduced.
- The RS could lead to better outcomes for consumers through an increased range of products and services, reduced costs and improved access to financial services.
1 Innovators may lose some flexibility and time in going through the RS process (but running the sandbox program in a time-bound manner at each of its stages can mitigate this risk).
2 Case-by-case bespoke authorizations and regulatory relaxations can involve time and discretional judgements (this risk may be addressed by handling applications in a transparent manner and following well-defined principles in decision-making).
3 The RBI or its RS cannot provide any legal waivers.
4 Post-sandbox testing, a successful experimenter may still require regulatory approvals before the product/services/technology can be permitted for wider application.
5 Regulators can potentially face some legal issues, such as those relating to consumer losses in case of failed experimentation or from competitors who are outside the RS, especially those whose applications have been/may be rejected. These, however, may not have much legal ground if the RS framework and processes are transparent and have clear entry and exit criteria. Upfront clarity that liability for customer or business risks shall devolve on the entity entering the RS will be important in this context.
The target applicants for entry to the RS are FinTech firms which meet the eligibility conditions prescribed for start-ups by the government.
The focus of the RS will be to encourage innovations where
- there is absence of governing regulations;
- there is a need to temporarily ease regulations for enabling the proposed innovation;
- the proposed innovation shows promise of easing/effecting delivery of financial services in a significant way.
The RBI shall consider the following key design features for the RS:
Sandbox Cohorts and Product/Services/Technology
The RS may run a few cohorts (end-to-end sandbox process), with a limited number of entities in each cohort testing their products during a stipulated period. The RS shall be based on thematic cohorts focussing on financial inclusion, payments and lending, digital KYC, etc. The cohorts may run for varying time periods but should ordinarily be completed within six months.
An indicative list of innovative products/services/technology which could be considered for testing under RS are as follows.
1 Innovative Products/Services
- Retail payments
- Money transfer services
- Marketplace lending
- Digital KYC
- Financial advisory services
- Wealth management services
- Digital identification services
- Smart contracts
- Financial inclusion products
- Cyber security products
2 Innovative Technology
- Mobile technology applications (payments, digital identity, etc.)
- Data Analytics
- Application Program Interface (APIs) services
- Applications under block chain technologies
- Artificial Intelligence and Machine Learning applications
2 Regulatory Requirements/Relaxations for Sandbox Applicant
The RBI may consider relaxing, if warranted, some of the regulatory requirements for sandbox applicants for the duration of the RS on a case-to-case basis. However, regulatory requirements that shall mandatorily have to be maintained by the applicants are as follows:
- Customer privacy and data protection
- Secure storage of and access to payment data of stakeholders
- Security of transactions
- KYC/AML/CFT requirements
- Statutory restrictions
3 Exclusion from Sandbox Testing
The entities may not be suitable for RS if the proposed financial service is similar to those that are already being offered in India unless the applicants can show that either a different technology is being gainfully applied or the same technology is being applied in a more efficient and effective manner.
An indicative negative list of products/services/technology which may not be accepted for testing is as follows:
- Credit registry
- Credit information
- Crypto currency/Crypto assets services
- Trading/investing/settling in crypto assets
- Initial Coin Offerings, etc.
- Chain marketing services
- Any product/services which have been banned by the regulators/Government of India
Number of FinTech Entities to be Part of a Cohort
The focus of the RS should be narrow in terms of areas of innovation, and limited in terms of intake. The RS shall begin the testing process with 10-12 selected entities through a comprehensive selection process as detailed in the framework under ‘Fit and Proper criteria for selection of participants in RS’.
Fit and Proper Criteria for Selection of Participants in RS
1 The entities should satisfy the following conditions:
- The entity should be a company incorporated and registered in India and shall meet the criteria of a start-up as per Govt. of India, DIPP Notification No. G.S.R. 364(E) dated April 11, 20181.
- The entity shall have a minimum net worth of Rs.50 lakh as per its latest audited balance sheet.
- The conduct of the bank accounts of the entity as well its promoters/directors should be satisfactory.
- A satisfactory CIBIL or equivalent credit score of the promoter(s)/director(s)/ entity is required.
- Applicants should demonstrate that their products/services are technologically ready for deployment in the broader market.
- The entity must demonstrate arrangements to ensure compliance with the existing regulations/laws on consumer data protection and privacy.
- There should be adequate safeguards built in its IT systems to ensure that it is protected against unauthorized access, alteration, destruction, disclosure or dissemination of records and data.
- The entity should have robust IT infrastructure and managerial resources. The IT systems used for end-to-end sandbox processing will be checked by the RBI to ensure end-to-end integrity of information processing by the entities concerned.
2 The proposed FinTech solution should highlight an existing gap in the financial ecosystem and the proposal should demonstrate how it would address the problem, or bring benefits to consumers or the industry or perform the same work more efficiently.
3 The applicants should demonstrate that there is a relevant regulatory barrier that prevents deployment of the product/service at scale, or a genuinely innovative and significantly important product/service/solution is proposed for which relevant regulation is necessary but absent.
4 The test scenarios and expected outcomes of the sandbox experimentation should be clearly defined, and the sandbox entity should report to the RBI on the test progress, based on an agreed schedule.
5 The appropriate boundary conditions (refer to section 6.7) should be clearly defined for the RS to be meaningfully executed while sufficiently protecting consumers’ privacy.
6 An acceptable exit and transition strategy should be clearly defined in the event that the proposed FinTech-driven financial service has to be discontinued, or can proceed to be deployed on a broader scale after exiting the RS.
7 The applicants shall be required to share the results of Proof of Concept (PoC)/testing of use cases including any relevant prior experiences before getting admission into RS for testing, wherever applicable.
8 Significant risks arising from the proposed FinTech solution or financial service should be assessed and mitigated.
Extending or Exiting the Sandbox
At the end of the sandbox period, the regulatory relaxations provided to the entities will expire and the sandbox entity must exit the RS. In the event that the sandbox entity requires an extension of the sandbox period, it should apply to the RBI at least one month before the expiration of the sandbox period and with valid reasons to support the application for extension. The decision of the RBI on the application will be final.
The sandbox testing will be discontinued any time at the discretion of the RBI if the entity does not achieve its intended purpose, based on the latest test scenarios, expected outcomes and schedule mutually agreed by the sandbox entity with the RBI. Further, the RS may also be discontinued if the entity is unable to fully comply with the relevant regulatory requirements and other conditions specified at any stage during the sandbox process. The sandbox entity may also exit from the RS at its own discretion by informing the RBI one week in advance. The sandbox entity should ensure that any existing obligation to its customers of the financial service under experimentation is fully addressed before exiting the RS or discontinuing the RS.
Boundary Conditions
When a sandbox operates in the production environment, it must have a well-defined space and duration for the proposed financial service to be launched, within which the consequences of failure can be contained. The appropriate boundary conditions should be clearly defined for the RS to be meaningfully executed while sufficiently protecting the interests of consumers. The boundary conditions for the RS may include the following:
- Start and end date of the RS
- Target customer type
- Limit on the number of customers involved
- Transaction ceilings or cash holding limits
- Cap on customer losses
Ensure Transparency
Outreach with stakeholders and clear and adequate information to the participants in the RS is important. The RBI will communicate the entire RS process including its launch, theme of the cohort, and entry and exit criteria through its official website.
Consumer Protection
The sandbox participant will be required to ensure that any existing obligations to the customers of the financial service under experimentation is fulfilled or addressed before exiting or discontinuing the RS. It may be noted that entering the RS does not limit the entity’s liability towards its customers. The entities entering the RS must be upfront and, in a transparent way, notify test customers of potential risks and the available compensation and obtain their explicit consent in this regard.
End-to-End Sandbox Process
A detailed end-to-end sandbox process, including the testing of the products/innovations by FinTech entities, shall be overseen by the FinTech Unit (FTU) at the RBI.
The Sandbox Process: Stages and Timelines
Each cohort of the RS shall have the following five stages and timeline:
1 Preliminary Screening (4 weeks)
The FTU shall ensure that the applicant clearly understands the objective and principles of the sandbox and conforms to it. This phase shall last for 4 weeks from the launch of the sandbox, where the applications shall be received by the FTU and evaluated to shortlist applicants meeting the eligibility criteria.
2 Test Design (3 weeks)
This phase may last for 3 weeks. The FTU shall finalize the test design through an iterative engagement with the applicants and identify outcome metrics for evaluating evidence of benefits and risks.
3 Application Assessment (3 weeks)
This phase may last for 3 weeks. The FTU shall vet the test design and propose regulatory modifications, if any.
4 Testing (12 weeks)
This phase may last for a maximum of 12 weeks. The FTU shall generate empirical evidence to assess the tests by close monitoring.
5 Evaluation (4 weeks)
This phase may last for 4 weeks. The final outcome of the testing of products/services/technology as per the expected parameters including viability/acceptability under the RS shall be confirmed by the RBI. The FTU shall assess the outcome reports on the test and decide on whether the product/service is viable and acceptable under the RS.
- Upon approval, the applicant becomes the entity responsible for operating in the RS. The RBI will provide the appropriate regulatory support by relaxing specific regulatory requirements (which the sandbox entity will otherwise be subject to), where necessary, for the duration of the RS. The RBI shall bear no liability arising from RS process and any liability arising from the experiment will be borne by the applicant as a sandbox entity.
- Upon successful experimentation and on exiting the RS, the sandbox entity must fully comply with the relevant regulatory requirements. The applicant should clearly understand the objective and principles of the RS. It must be emphasized that the RS is not intended and cannot be used as a means to circumvent legal and regulatory requirements.
- At the end of the sandbox period, the entity must exit the RS.
The RBI shall reserve the right to publish any relevant information about the RS applicants on its website, including for the purpose of knowledge transfer and collaboration with other international regulatory agencies.
RBI said that innovation and technologies around credit registry and information, cryptocurrency and assets, trading, ICO and chain marketing services may not be accepted as a part of the sandbox.
The RBI further added that the focus of the sandbox will be at innovations, which have an absence of governing regulations; a need to temporarily ease regulations for enabling the proposed innovation; or is expected to effect the delivery of financial services in a significant way.
Source: rbi.org.in, https://rbi.org.in/Scripts/BS_SpeechesView.aspx?Id=1071, United Nations Secretary-General’sSpecial Advocate for Inclusive Finance for Development(UNSGSA), yourstory.com, &
https://www.pwc.in/consulting/financial-services/fintech/fintech-insights/the-sandbox-approach.html
https://www.pwc.in/consulting/financial-services/fintech/fintech-insights/the-sandbox-approach.html
No comments:
Post a Comment